b881acd4a26f489015f325743f4f472e_JaffaCakes118 | Triage

Sharing

General

Target

b881acd4a26f489015f325743f4f472e_JaffaCakes118
Size

348KB
MD5

b881acd4a26f489015f325743f4f472e
SHA1

6f41372a035a7fc17c8d7525c360743db8c617a0
SHA256

8681abd957b934b71bc17d1683e53c002d7bc8623bd4c5a982f1a4736672a341
SHA512

3c0b11b0d6b8325157e8d68f05325dffd47539284c515c54926a8015404437a9ae5f21b748e3ed6f04663e37e6792f913390eb515d23b26fc44470800f1f00c7
SSDEEP

6144:N5AcHnrOCL/HqDaoFJvO6AXA2daxt82AFnWk7u8Wg5p9DR43:NFnrOMiDr3WNaxkc8/DRU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b881acd4a26f489015f325743f4f472e_JaffaCakes118

Files

b881acd4a26f489015f325743f4f472e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

dfa1d8e4b32e8b39a38d3bae9917691d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetSystemInfo

user32

DestroyIcon
FlashWindow
EndDialog

Sections

.budal
Size: 34KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hsz
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fin
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xgp
Size: 1024B - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE